The most effective and scalable method is to use a dynamic host group. Dynamic groups automatically add or remove hosts based on predefined criteria. By setting the assignment criterion to Type=Workstation (or the equivalent Product Type is Workstation in the Falcon UI), the group will automatically include all hosts that are identified as workstations. This ensures that all current and future workstations are automatically added to the group without manual intervention, fulfilling the requirement to "ensure all workstation hosts are added."

B. Create a Dynamic Group and Import All Workstations: This is incorrect because dynamic group membership is managed by rules, not by a one-time import. The import action is not a defining characteristic of a dynamic group.

C. Create a Static Group and Import all Workstations: This method is not optimal because static groups require manual management. While you can import the current list of workstations, the group will not automatically update when new workstations are added to the environment.

D. Create a Static Group with Type=Workstation Assignment: This is technically invalid. Static groups are populated by manual host selection, not by applying automatic assignment rules like Type=Workstation. This assignment method is exclusive to dynamic groups.

---

1. CrowdStrike Falcon® Platform Documentation

"Host and host group management": This document details the two types of host groups.

Section: "Dynamic host groups": "Hosts are automatically assigned to dynamic groups based on criteria you define

such as OS version

domain

or a tag. When a new host that meets the criteria is added to your environment

it's automatically added to the group." This supports the use of dynamic groups for automatic management.

Section: "Create a host group": The documentation outlines the steps for creating a dynamic group and specifies using an assignment rule. One of the available criteria is Product Type is

which can be set to Workstation. This directly validates the method described in option A.

Section: "Static host groups": "You manually assign hosts to static groups." This confirms that static groups (options C and D) lack the required automation.